$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: 9S1oBFnypVJR7zsjBBx3QPqJPI7AzDrw10TYrLWGK3I= Subject key identifier: 89:1F:3B:18:84:6E:04:DD:AA:D7:34:80:6E:08:AD:C3:04:E8:D6:A0 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 0904 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 08FD Signing time: Thu 30 May 2024 21:45:06 +0000 Manifest this update: Thu 30 May 2024 21:45:05 +0000 Manifest next update: Thu 06 Jun 2024 21:45:05 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: /WtLpzuu/4udBW8IizmiOCb6dq2/zcdzb1GbrjfKkk0=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: jObq5WAnKWNNe1xvn+i1p17e0KpzbzVrnmTwIgH5Dh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 21:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2308 (0x904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: May 30 21:45:05 2024 GMT Not After : Jun 6 21:45:05 2024 GMT Subject: CN=6658f361-a9c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:87:c0:37:1b:10:cc:6c:42:9a:e6:46:38:ea: 78:1b:7b:1c:29:ab:1a:cc:36:b9:20:91:21:dc:e4: 7d:7e:b6:92:7f:c7:97:f2:ab:68:ef:24:6d:f2:40: 50:5b:69:a1:43:26:13:47:30:9c:2d:ee:00:85:37: 8c:a6:fc:e1:87:3b:49:3f:52:19:8f:f9:1b:3a:73: 7c:7b:03:54:16:40:01:10:13:f1:0e:4a:b4:04:8e: 21:b9:d1:d3:dc:41:a8:76:6d:f6:ef:52:50:9f:59: a3:d0:b2:d8:0f:7f:44:16:83:c8:ef:38:5a:f0:a8: 74:21:83:39:f8:5f:ec:7a:d4:b0:a3:82:44:ed:3c: e5:37:31:ad:67:f8:f8:40:11:85:f1:36:ee:02:29: bf:15:d1:bd:75:68:73:f3:46:c5:2a:76:37:41:1a: e9:f3:d1:c8:8a:a2:a4:f9:7a:05:2c:21:c2:52:c1: e8:f0:ab:9d:37:ce:a8:37:14:c9:f9:f7:9b:44:0f: 2c:80:94:6a:8b:51:fd:51:06:4e:12:17:6c:62:96: 9a:eb:09:fe:d6:b5:03:3e:fa:79:0c:03:4d:b1:8c: 61:ad:42:cc:a7:14:21:87:88:d9:bc:96:e4:3d:e5: 53:50:27:58:c9:5c:86:10:14:ca:d2:ad:71:02:33: 2a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1F:3B:18:84:6E:04:DD:AA:D7:34:80:6E:08:AD:C3:04:E8:D6:A0 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3d:be:28:ae:7c:c2:39:51:4f:89:21:46:6b:70:14:da:30: b2:57:3d:c0:a5:f0:81:92:8c:11:fa:3b:d2:e9:f7:2c:86:47: 45:c2:a7:16:29:2b:60:9f:ec:2a:3b:c1:49:a0:b6:77:8f:9f: 38:a5:e8:7e:e6:b3:8f:ed:0a:09:a8:80:77:50:f8:c6:fe:7b: ef:8e:e5:9d:96:91:2e:25:e2:db:dc:37:79:22:27:6f:74:78: 36:d6:34:ad:40:8e:eb:c5:48:4c:37:ee:96:05:d4:78:88:a5: 75:0e:69:a9:49:1a:7a:0a:9e:8a:ec:2d:4f:4c:c6:70:4a:71: f6:a4:8e:a4:53:b9:0d:8b:a7:0a:01:cc:12:61:2b:6c:6d:52: 08:62:3e:1b:f8:0e:72:fe:7d:49:01:2b:55:63:ec:cf:69:66: d3:02:a2:b0:60:ae:93:23:54:2e:98:04:3d:8d:91:02:f2:30: 0c:24:a9:68:95:b7:95:89:79:0b:32:7f:3c:a1:98:14:25:fa: f4:c2:d9:2a:60:91:bc:92:f6:a7:ef:a2:22:f6:db:63:54:ab: 7b:54:0b:eb:09:5f:40:b1:b9:bc:7a:0e:42:93:bd:12:5b:b5: 14:fd:ef:2d:4b:fa:53:99:1c:9f:9e:dd:19:1e:56:89:58:db: c3:44:30:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjQwNTMwMjE0NTA1WhcNMjQwNjA2MjE0NTA1WjAYMRYwFAYD VQQDEw02NjU4ZjM2MS1hOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIfANxsQzGxCmuZGOOp4G3scKasazDa5IJEh3OR9fraSf8eX8qto7yRt8kBQ W2mhQyYTRzCcLe4AhTeMpvzhhztJP1IZj/kbOnN8ewNUFkABEBPxDkq0BI4hudHT 3EGodm3271JQn1mj0LLYD39EFoPI7zha8Kh0IYM5+F/setSwo4JE7TzlNzGtZ/j4 QBGF8TbuAim/FdG9dWhz80bFKnY3QRrp89HIiqKk+XoFLCHCUsHo8KudN86oNxTJ +febRA8sgJRqi1H9UQZOEhdsYpaa6wn+1rUDPvp5DANNsYxhrULMpxQhh4jZvJbk PeVTUCdYyVyGEBTK0q1xAjMqdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkfOxiE bgTdqtc0gG4IrcME6NagMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGPb4ornzCOVFPiSFGa3AU2jCyVz3ApfCBkowR+jvS6fcshkdFwqcW KStgn+wqO8FJoLZ3j584peh+5rOP7QoJqIB3UPjG/nvvjuWdlpEuJeLb3Dd5Iidv dHg21jStQI7rxUhMN+6WBdR4iKV1DmmpSRp6Cp6K7C1PTMZwSnH2pI6kU7kNi6cK AcwSYStsbVIIYj4b+A5y/n1JAStVY+zPaWbTAqKwYK6TI1QumAQ9jZEC8jAMJKlo lbeViXkLMn88oZgUJfr0wtkqYJG8kvan76Ii9ttjVKt7VAvrCV9Asbm8eg5Ck70S W7UU/e8tS/pTmRyfnt0ZHlaJWNvDRDDQ -----END CERTIFICATE-----Generated at Thu May 30 23:29:02 2024 by rpki-client on console-ams.rpki-client.org